CVE-2019-5968

Summary

Cross-site request forgery (CSRF) vulnerability in GROWI v3.4.6 and earlier allows remote attackers to hijack the authentication of administrators via updating user's 'Basic Info'.

Affected Software

VendorProductVersion RangeStatus
WESEEK, Inc.GROWIv3.4.6 and earlieraffected

Weaknesses

  • Cross-site request forgery

ADP Enrichment

CVE Program Container

Additional References

References